fixed inverted tests in signature unpack and use of unpack.

dghgit · dghgit · commit 2431e06c0bf7 · 2022-08-21T18:11:23.000+10:00
diff --git a/core/src/main/java/org/bouncycastle/pqc/crypto/crystals/dilithium/DilithiumEngine.java b/core/src/main/java/org/bouncycastle/pqc/crypto/crystals/dilithium/DilithiumEngine.java
@@ -427,7 +427,6 @@ public byte[] signSignature(byte[] msg, int msglen, byte[] rho, byte[] key, byte
             // System.out.println(h.toString("h"));
             // System.out.println("Signature before pack = ");
             // Helper.printByteArray(outSig);
-
             outSig = Packing.packSignature(outSig, z, h, this);
 
             rej = false;
@@ -474,7 +473,7 @@ public boolean signVerify(byte[] sig, int siglen, byte[] msg, int msglen, byte[]
         // System.out.println("rho = ");
         // Helper.printByteArray(rho);
 
-        if (Packing.unpackSignature(z, h, sig, this))
+        if (!Packing.unpackSignature(z, h, sig, this))
         {
             return false;
         }
diff --git a/core/src/main/java/org/bouncycastle/pqc/crypto/crystals/dilithium/Packing.java b/core/src/main/java/org/bouncycastle/pqc/crypto/crystals/dilithium/Packing.java
@@ -172,8 +172,8 @@ static boolean unpackSignature(PolyVecL z, PolyVecK h, byte[] sig, DilithiumEngi
         }
         for (j = k; j < engine.getDilithiumOmega(); ++j)
         {
-            if ((sig[end + j] & 0xFF) == 0)
-            {
+            if ((sig[end + j] & 0xFF) != 0)
+            {                    
                 return false;
             }
         }
diff --git a/core/src/test/java/org/bouncycastle/pqc/crypto/test/CrystalsDilithiumTest.java b/core/src/test/java/org/bouncycastle/pqc/crypto/test/CrystalsDilithiumTest.java
@@ -3,6 +3,7 @@
 import java.io.BufferedReader;
 import java.io.InputStream;
 import java.io.InputStreamReader;
+import java.security.SecureRandom;
 import java.util.HashMap;
 
 import junit.framework.TestCase;
@@ -15,6 +16,7 @@
 import org.bouncycastle.pqc.crypto.crystals.dilithium.DilithiumPublicKeyParameters;
 import org.bouncycastle.pqc.crypto.crystals.dilithium.DilithiumSigner;
 import org.bouncycastle.util.Arrays;
+import org.bouncycastle.util.Strings;
 import org.bouncycastle.util.encoders.Hex;
 
 public class CrystalsDilithiumTest
@@ -219,33 +221,33 @@ public void testVectors()
         }
     }
 
-//    public void testDilithiumRandom()
-//    {
-//        byte[] msg = Strings.toByteArray("Hello World!");
-//        DilithiumKeyPairGenerator keyGen = new DilithiumKeyPairGenerator();
-//
-//        SecureRandom random = new SecureRandom();
-//
-//        keyGen.init(new DilithiumKeyGenerationParameters(random, DilithiumParameters.dilithium3));
-//
-//        for (int i = 0; i != 1000; i++)
-//        {
-//            AsymmetricCipherKeyPair keyPair = keyGen.generateKeyPair();
-//
-//            // sign
-//            DilithiumSigner signer = new DilithiumSigner();
-//            DilithiumPrivateKeyParameters skparam = (DilithiumPrivateKeyParameters)keyPair.getPrivate();
-//            ParametersWithRandom skwrand = new ParametersWithRandom(skparam, random);
-//            signer.init(true, skwrand);
-//
-//            byte[] sigGenerated = signer.generateSignature(msg);
-//
-//            // verify
-//            DilithiumSigner verifier = new DilithiumSigner();
-//            DilithiumPublicKeyParameters pkparam = (DilithiumPublicKeyParameters)keyPair.getPublic();
-//            verifier.init(false, pkparam);
-//
-//            assertTrue("count = " + i, verifier.verifySignature(msg, sigGenerated));
-//        }
-//    }
+    public void testDilithiumRandom()
+    {
+        byte[] msg = Strings.toByteArray("Hello World!");
+        DilithiumKeyPairGenerator keyGen = new DilithiumKeyPairGenerator();
+
+        SecureRandom random = new SecureRandom();
+
+        keyGen.init(new DilithiumKeyGenerationParameters(random, DilithiumParameters.dilithium3));
+
+        for (int i = 0; i != 1000; i++)
+        {
+            AsymmetricCipherKeyPair keyPair = keyGen.generateKeyPair();
+
+            // sign
+            DilithiumSigner signer = new DilithiumSigner();
+            DilithiumPrivateKeyParameters skparam = (DilithiumPrivateKeyParameters)keyPair.getPrivate();
+            ParametersWithRandom skwrand = new ParametersWithRandom(skparam, random);
+            signer.init(true, skwrand);
+
+            byte[] sigGenerated = signer.generateSignature(msg);
+
+            // verify
+            DilithiumSigner verifier = new DilithiumSigner();
+            DilithiumPublicKeyParameters pkparam = (DilithiumPublicKeyParameters)keyPair.getPublic();
+            verifier.init(false, pkparam);
+
+            assertTrue("count = " + i, verifier.verifySignature(msg, sigGenerated));
+        }
+    }
 }

Original file line number	Diff line number	Diff line change
`@@ -427,7 +427,6 @@ public byte[] signSignature(byte[] msg, int msglen, byte[] rho, byte[] key, byte`
`427`	`427`	`// System.out.println(h.toString("h"));`
`428`	`428`	`// System.out.println("Signature before pack = ");`
`429`	`429`	`// Helper.printByteArray(outSig);`
`430`		`-`
`431`	`430`	`outSig = Packing.packSignature(outSig, z, h, this);`
`432`	`431`
`433`	`432`	`rej = false;`
`@@ -474,7 +473,7 @@ public boolean signVerify(byte[] sig, int siglen, byte[] msg, int msglen, byte[]`
`474`	`473`	`// System.out.println("rho = ");`
`475`	`474`	`// Helper.printByteArray(rho);`
`476`	`475`
`477`		`- if (Packing.unpackSignature(z, h, sig, this))`
	`476`	`+ if (!Packing.unpackSignature(z, h, sig, this))`
`478`	`477`	`{`
`479`	`478`	`return false;`
`480`	`479`	`}`
Original file line number	Diff line number	Diff line change
`@@ -172,8 +172,8 @@ static boolean unpackSignature(PolyVecL z, PolyVecK h, byte[] sig, DilithiumEngi`
`172`	`172`	`}`
`173`	`173`	`for (j = k; j < engine.getDilithiumOmega(); ++j)`
`174`	`174`	`{`
`175`		`- if ((sig[end + j] & 0xFF) == 0)`
`176`		`- {`
	`175`	`+ if ((sig[end + j] & 0xFF) != 0)`
	`176`	`+ {`
`177`	`177`	`return false;`
`178`	`178`	`}`
`179`	`179`	`}`